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Module Main.cpp 



Mam.cpp_1(2) 



{* This is the System mainline. A 
configuration file is read and if 
successful, services are started. 7 



tnttialize Windows Sockets * 



SET wVerstonRaquested; 
WSAStartup; 



r-eise- 



Set console handlers and \ 
start ReadyNe^ services. • 



IReadCcHifigRle 



Conb^lHandler; 
LaunchServices, 





Figure 1 
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Module Handiers.cpp 



handlers cpp_1(10) 



FUNCTION 
getDestIp 



I* Retneves the destination address 
from the client table using source IP 
and port number */ 




GET entry from dient 


table; 




GET connection info from 


table entry; 









Based on source IP 
address and port number, 
retrieve the destination IP 
address from the client 
connection table. 



Figure 2 




FUNCTION 
connectToHost 



r Uses Windows sockets to 
connect to a particular IP address 
and port */ 



Figure 3 



^else 



rc=\Af_connect 


1 


r 



SOCKET ERROR 



else 



( 


ip 








port 








r 


sock = w_socket 




r 
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Module Handlersxpp 



handlers. cpp_2( 10) 



FUNCTION 
proxyMessage 



src_sock 
dst sock 



/* Read data packet from the source 
socket and direct It to the destination 
socket */ 



receive src sock 



Figure 4 



send dst socK 




FUNCTION 
dataHandler 



param 



r Checks for network traffic on 
the client-side and server-side 
and passes these messages to 
the call proxyMessage */ 



Figure 5 




-Yes 



1 





proxyMessage 




{server - 


> dient) 


\^ — 
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Module Handlers.cpp 



handlers. cpp_3( 10) 



FUNCTION 
proxyMessages 




/* Listens for activity on the 
appropriate socket and 
determines the direction of 
the data, calling 
proxyMessage 7 



Figure 6 



listen for a 
send or receive 



who sent the 
message? 



client 



proxyMessage 
{dient -> server) 



proxyMessage 
(client -> server) 



FUNCTION 
genericTCPProxy 



r Initialize a socket on the given 
dient and server ports and begin 
a new thread (handler function) to 
handle activity on that socket 7 



Figure 7 



cjDort 

sjDort 

handler_fri 

protocol_name 

ProtocoLnumber 

backlog_si2e 



1 


r 


create a soc 
connectic 
dient-sic 


ket to accept 
ns on the 
e adapter 



listen on this socket 
accept the socket 



V 



start the handler Jn 
thread 
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Module arpspoof.cpp 



arpspoof.cpp_1{5) 



FUNCTION 
RnetArpSpoofer 



I* Handles any ARP requests by 
waiting for an ARP packet, 
responding with the System 
client-side IP address, and 
inserting the client into the 
routeTabie */ 





Initialize packet dnver 
for ciient-side adapter. 




r 


Watt for a pa 


cket to amve. 



Is Itie packet 
an ARP 
packet^ 



YES 



Add or update entry to 
route table. 
Delete old entnes. 




r 


Send an AF 
of the citen 
addi 


P response 
t-side MAC 
ess. 



Figure 8 
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Module dnsproxy.cpp 



dnsproxy.cpp_1(9) 



FUNCTION 
RnetDnsHandleRqst 




YES 



/* Processes a DNS query. If it 
is a local name, a response is 
made that delivers the 
System ciient-side IP 
address. If it is not, the entry is 
added to the DNSTableand 
the request forwarded to the 
DNS server */ 



1 


r 




f 


Add source to DNSTable 




Send an ARP response 
ofthe client-side MAC 
address. 




r 






Forward query to the DNS 
server. 







Figure 9 
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Module dnsproxy.cpp 



dnsproxy.cpp_2(9) 



FUNCTION 
RnetDnsRtnResp 



SOURCE 


DEST 




1 


r 



/* Forwards a response from 
the DNS server to the 
System client. If the DNS 
server does not respond with s 
success, System responds 
with a default response: its 
client-side IP address */ 




Buiid default response 



YES 



Buitd response from DNS 
answers 



Build default response 



Get client IP from 
DNSTable 



Send response to client 



Figure 10 
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Module dnsproxy.cpp 



dnsproxy.cpp_3(9) 



FUNCTION 
RnetDnsProxy 



Initialize DNS Server 
address tnto 
DNSinetADDR 



Figure 11 



Initialize diertt-stde socket 
to ClientlnetAddr 



Initialize server-side socket 
to ServerlnetAddr 



/* Initiaiize ciient-side and server- 
side sockets listening for DNS 
traffic. When a DNS packet 
arrives on the ciient-side, call 

RnetDnsHandleRqst. Packets 

arriving on the server-side are 
passed to RnetDnsRtnResp */ 



^1 Wait for DNS 

padtet arrival " 



Which socket? 



CLIENT-SIDE 



SERVER-SIDE 



RnetDnsHandleRqst 



RnetDnsRtnResp 
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Module recv.c recv.c_1(3) 



FUNCTION 
recv.c - Additions 




r For each packet that arrives to the driver, 
create a UDP packet with destination 
information and send to transport layer on 
the System port (60). Add dient 
information to DestAddrPool if UDP packet 
or if a handshaking TCP packet Delete 
DestAddrPool entry if TCP FjN. V 

YES- 



ts PACKET 
TCP Of UDP? 



YES 



- COPY arginai destlP to data portion of 
RN_UDP 

- COPY FiN value 

- COPY source! P and port 

- SET destiP to ReadyNet dient-stde tP 

- SET protocot field to UDP 
-SET UDP and IP length 

- SET destPORT to ReadyNet port (60) 



SET IPs 
check 


ind UDP 
5ums 




r 


SET PAC^ 
and send 1 
transpc 


(ET length 
?N_UDP to 
>rt layer 



Change OestiP jn 
PACKET to ReadyNet 
cltent-side IP 




r 


Set IP and TCP/UOP 
(^lecksunre 


1 


r 


Send Pfi 
transpc 


CKETto 
rt layer 




Figure 12 
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Module send.c 



send.c.1{2) 



FUNCTION 
send.c - Additions 



( 


PACKET 
TABLE 


) 




f 


Copy PACKET into BUFFER 




r 




ts BUFFER a 
TCP Of UOP 
packet? 




r Sends packets to the 
System clients. Changes 
destination IP and MAC 
addresses according to 
DestAddrPool and 
recalculates checksums 
before sending the packet to 
the client. */ 



GET dient information 
from TABLS and changa 
BUFFER JP and MAC 




r 




is SUFFER 3 
TCP packet? 




NO 



NO 





r 


Mark finished if RNflag 
Mark acknowledged is ACK flag 
Clear TABLE entry if aJI flags set 


1 


r 




- Caicuiate new IP checksum 
for SUFFER 

- Calculate new TCPAJDP 
checksum for BUFFER 

, copy BUFFER to PACKET 



Change BUFFER source 
port to onginal port 



-NO- 



Figure 13 
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Figure 14 
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^System Server 



System 's 
Gateway 




System 
Client Subnet 



IP 200.10.5.1 



ARP Request: 

Target MAC: FF.FF'FF.FF FF FF 
Target IP Address. 192 168 3 5 
Sender MAC 00:55 44-33-22 11 
Sender IP Address: 192 168 3 5 



lOBaseT Hub 
1 



ARP Reply: 

Target MAC 00 55 44 33:22 1 1 
Target IP Address: 192 168 3 5 
Sender MAC. 00 U:22:33-44-55 
Sender IP Address 192.168 3 5 



Visiting 
Client A 




SKiiiEiiSI 



Visiting 
Clients 




IP 192.168.3.5 
Subnet 255.255.255.0 
MAC: 00:55:44:33:22:11 



IP 192.168.3.5 
Subnet 255.255.255.0 
MAC 00:11:22:33:44:55 



Visiting 
Client C 



IP 157.100.10.1 
Subnet 255.255.255.0 
MAC 00:AA:BB:CC:DD:1 1 




Figure 15 
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Figure 16 




Subnet 255.255.255.0 Subnet 255.255.255.0 Subnet 255.255.255.0 

MAC: 00:55:44:33:22:1 1 MAC 00:1 1:22:33:44:55 ^AC 00:AA:BB:CC:DD:1 1 



Figure 17 
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System Server 



System 
Gateway 



Visiting 
Client A 




ARP Request: 

Target MAC. FF.FF FF FF-FF FF 
Target IP Address: 192 168.3 5 
Sender MAC 00 55:44 33 22' U 
Sender IP Address. 192. 168 3.5 



IP 192.168.3,5 
Subnet 255.255.255.0 
MAC: 00:55:44:33:22:11 



IP 192.168,3.5 
Subnet 255-255.255.0 
MAC 00:1 1:22:33:44:55 



Visiting 
Client C 



IP 157.100.10.1 
Subnet 255.255.255.0 
MAC 00:AA:BB:CC:DD:1 1 



Figure 18 
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System Server 



System 's 
Gateway 



ARP Request: 

Target MAC- 00 22. 3 3. 44: 55: AA 
Target IP Address: 192 168.3.5 
Sender MAC 00 55 44 33.22 1 1 
Sender IP Address 192 168 3 5 




IP 200.10.5.1 : 
\jVIAC 00:22:33:44:55:AA J 



ARP Request: 

Target MAC FFFF FF FF FF.FF 
Target IP Address 192 168 3 5 
Sender MAC: 00.55.44.33 22 11 
Sender IP Address* 192.168 3 5 





System 
Client Subnet 



Ethernet Switch 




■;i:::n!!;!:::aientBi; ^ .ri- 

IP 192.1683.5 
Subnet255i55^55.0 



Figure 19 
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Figure 20 
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Room 1000 



Example 200 Room Hotel 
(10 floors + basement) 



1 0/1 OOBase-T Ethernet 
Switch 



System Server 1 
(on 6th floor) 




System Server 2 
(in basement) 



Gateway Server 
(in basement) 



DSl Leased Trunk 



Figure 21 
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to Gateway Server 



Figure 22 



System Server 



System 's 
Gateway 




Printer 

supporting TCP/IP, NetBEUI 
and EtherTalk (i.e. AppleTalk) 



Visiting 
Client A 



Macintosh 

(running MacTCP and 
AppleTalk) 



PC (running TCP/IP and 
possibly NetBEUI) 



PC (running TCP/IP and 
possibly NetBEUI) 



Figure 23 
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Fictional Inc. 
(1.3.6.1.4.L1000) 




Figure 24 



Hotel Gateway 




Visiting 
Client A 



Visiting 
Client B 



Some Registered Class 
C IP address 
Gateway to the Internet 



Pool of IP add 

.l'j52toJ0.2 








^;|;222. 10:10.5 









IP 222.10.5.1 (Registered) 



IP 222.10.10.1 



Figure 25 
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Figure 26 




Figure 27 
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Figure 29 
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Port 
1051 



System client 



Port 
1060 



Port 
1051 



\m5 



System server 



Destination 



Port 
1050 



Port 

1051 



Perceived connection 



Figure 30 



WindowNT TCP/IP stack 
TCP/IP 



Virtual Adapter [3] 

System Driver 
System Transport 



Virtual Adapter [3] 

System Driver 
System Transport 



Adapter Driver 
Adapter [1] 



a GQDG 

— — -f^ ^.^ii ill 



□ 



Network Adapter 



Adapter Driver 
Adapter [2] 



□ O 
C3CJ 



□□□□□ 



Network Adapter 



Figure 31 



